Forum Discussion

Robert Marshall's avatar
Robert Marshall
Copper Contributor
Mar 30, 2017

DLP Policy Slow to Screen New Files in OneDrive For Business and SharePoint Online

Hello Everyone,   I have enabled some DLP policies in Office 365 security center, and these apply to OneDrive for business and SharePoint Online.   So far these policies are working and preventin...
compliance
office 365
onedrive
security
sharepoint
Robert Marshall's avatar
Robert Marshall
Copper Contributor
Jun 04, 2020

Yes, this is a huge security issue. Not only has it not improved, but MS seems content to spend it time rebranding things. Now we have security tags. These tags have the same flaw. 

 

To make matters worse, I have an environment that has Windows 10, Mac OS, IOS, etc. The encryption features that follow a document depend on Azure Information Protection. The client is built into office now. 

 

Unfortunately, the office client does not have the encryption code. After speaking with MS support, the encryption features are in the Windows OS. So security in Azure/O365 is for Windows-only, it isn't real time, and in my opinion is not a serious contender in the security space.

Odenkaz's avatar
Odenkaz
Brass Contributor
Jun 04, 2020
This is very unfortunate to read. Chances are we may have to re-check if we want to stick with O365 or move to something else since we can't rely on their DLP policies when it comes to tagging new sensitive files.

Thank you for letting me know.
  • bgrono1's avatar
    bgrono1
    Copper Contributor
    Aug 05, 2020

    Odenkaz consider trying this.  

    https://docs.microsoft.com/en-us/sharepoint/sensitive-by-default

    • Odenkaz's avatar
      Odenkaz
      Brass Contributor
      Aug 22, 2020

      bgrono1 

       

      I tried it and I am having trouble. I can still share newly uploaded files even with this feature turned on. I read that this is a feature still on roll out. How would I know if I can now use it or not?